Deciphering the Legal Ramifications of Joseph Sullivan's Case in Cybercrime Prosecution

In 2016, Uber experienced a data breach that compromised the personal information of 57 million users and 600,000 drivers. In response to a ransomware demand from the hackers who had targeted the ride-sharing app, the company’s chief information security officer (CISO), Joseph Sullivan, attempted to cover up the data theft and mislead regulators. In 2022, Mr. Sullivan was found guilty of multiple charges relating to this incident. Today, as regulatory demands increase in response to ever-rising cybersecurity threats, many are asking what this ruling means for the criminal liability of CISOs and other business executives. Attorneys will find this discussion of liability and boundaries of duty an essential tool for counseling businesses on cybersecurity legal and regulatory risk management.
In this seminar, our expert panelists provide a comprehensive overview of the U.S. v. Joseph Sullivan case, beginning by introducing the facts and explaining the relevant technical information from a legal perspective. Next, our speakers discuss the charges against Mr. Sullivan and the issues considered in the case. They then review the ruling and offer observations about the outcome, concluding with key takeaways about what this case means for criminal liability for CISOs.

Our Mission is to bridge the knowledge gap between law and technology professionals by educating attorneys on technology to attorneys and technology executives on its laws and regulations. Legal Cyber Academy provides a comprehensive tool and evolving knowledge base through exclusive insights from world class cybersecurity, privacy, web 3.0, forensic, and e-discovery legal and technical practitioners. Earn CLE, CPE, and CE credits. (Refunds are available if you do not receive credit) At Legal Cyber Academy We recognize that technology, the cybersecurity threats it faces, and relevant laws and regulation are rapidly evolving, presenting unique challenges and opportunities. Our platform is dedicated to empowering legal professionals with the skills and understanding necessary to navigate the complex landscape of technology in their field, enabling them to effectively advise clients, draft contracts, and navigate legal implications in a technology-driven world. Simultaneously, we strive to equip technology professionals with the legal knowledge they need to make informed decisions, ensure compliance with regulations, and limit liability. By fostering a deep understanding of legal frameworks, we hope to support technology professionals in creating innovative, compliant, and socially conscious technological advancements. Join us in our mission to reshape the way legal professionals and technology experts understand and interact with each other in a rapidly changing technical and legal landscape. Together, they will mitigate risk better, ensure compliance, and actively shape the future of technology and its accompanying laws.

LAW & FORENSICS LLC – FOUNDER; JAMS – NEUTRAL; HARVARD – ADJUNCT;
Danie Garrie, Esq., is the Co-Founder of Law & Forensics LLC, where he heads the Computer Forensics and digital discovery Cybersecurity teams. Daniel has been a dominant voice in the computer forensics and cybersecurity space for the past 20 years, as an attorney and technologist. He is an adjunct professor at Harvard for Computer Forensics, and prior to Law & Forensics, he successfully built and sold several technology start-up companies. Since co-founding Law & Forensics LLC in 2008, Daniel has built it into one of the leading boutique firms specializing in cybersecurity and forensic engineering. He is a mediator, arbitrator, and e-discovery special master for JAMS and is a partner and head of Cybersecurity practice at Zeichner, Ellman & Krause LLP. Daniel earned both a Bachelor’s and a Master’s degree in computer science from Brandeis University, as well as a J.D. from Rutgers Law School. Daniel has led cyber and forensic teams in some of the most visible and sensitive incidents in the United States. He and his team have worked globally for two of the top five banks and dozens of the largest private and public companies in the world. In addition, Daniel has been awarded several patents for advanced cybersecurity and forensic platforms he built with his team, including TableTop.AI, CustodyTrack.IO, and Forensic Scan. Daniel is also well-published in the cybersecurity space and has authored more than 200 articles and books. His work is cited by Black’s Law Dictionary 10th Ed. defining the terms 'software', 'internet', and 'algorithm'. Lastly, he has been recognized by several United States Supreme Court Justices for his legal scholarship and is a trusted source and thought leader for cybersecurity articles and opinions, cited over 500 times to date.
Marvell Technology, Inc. - Assistant General Counsel, Ethics and Compliance
Amie Rooney is an Assistant General Counsel for Ethics and Compliance at Marvell Technology Inc. In this role, she advises and enhances the maturity of global ethics and compliance and cybersecurity programs, including incident response and ransomware preparedness. Ms. Rooney also advises on ERM and crisis management and develops board materials, drafts and revises policies, works with leadership and across the business and product teams to develop repeatable processes, and delivers training and awareness campaigns. She conducts ethics and compliance investigations worldwide and responds to government inquiries as necessary and provides a bridge to law enforcement. Ms. Rooney additionally participates in litigation consultations, particularly related to trade secret issues, and engages and manages outside counsel as needed. Ms. Rooney is also a Former Assistant U.S. Attorney, with extensive experience as lead counsel in hundreds of criminal cases in Federal District Court and before the Ninth Circuit. She has prior substantial experience as a trusted and aggressive civil litigator in top-tier international law firms representing technology and financial clients. In her current role, she leverages relationships across the law enforcement, legal, and business community for the benefit of her high-growth technology company. Ms. Rooney personally prosecuted and tried almost two dozen cases in federal court, including wire fraud, mail fraud, defense procurement fraud, health care fraud embezzlement, money laundering, arson, computer hacking, drug crimes, RICO, child exploitation offenses, FCPA violations, theft of trade secrets, and economic espionage. Ms. Rooney also held Top Secret/Sensitive Compartmentalized Information (TS/SCI) clearance with the U.S. Government. Ms. Rooney is a true strategic business partner, with a particular strength for evaluating risk and providing practical risk-mitigation strategies. She often advises C-suite, senior executives, managers, and employees across a wide range of legal and business problems, most often with significant cross-team collaboration. She has built deep, trusted relationships throughout the organization by being creative, approachable, and responsive. Other strengths include advocacy, market analysis, and strategic planning. She has the ability to explain complex issues in a clear and comprehensive manner using advanced verbal and written communication skills. She is excited to take on challenges and always striving for excellence.